Your company's infrastructure is on-premises, but all machines are running at maximum capacity.
You want to burst to Google Cloud.
The workloads on Google Cloud must be able to directly communicate to the workloads on-premises using a private IP range.
What should you do?
Click on the arrows to vote for the correct answer
A. B. C. D.D.
To enable direct communication between workloads running on-premises and on Google Cloud, while also ensuring that the communication occurs over a private IP range, you can set up a Virtual Private Cloud (VPC) network in Google Cloud that connects to your on-premises network via a secure VPN connection.
Out of the given options, the best approach to achieve this would be to choose option D: Set up Cloud VPN between the infrastructure on-premises and Google Cloud.
Here's a more detailed explanation of why this option is the best choice:
Option A: In Google Cloud, configure the VPC as a host for Shared VP This option is incorrect because Shared VPC is a way to share a common VPC network across multiple Google Cloud projects. It doesn't address the need for direct communication between workloads running on-premises and on Google Cloud.
Option B: In Google Cloud, configure the VPC for VPC Network Peering This option is also incorrect because VPC Network Peering allows two VPC networks to communicate with each other using private IP addresses, but it doesn't enable direct communication between workloads running on-premises and on Google Cloud.
Option C: Create bastion hosts both in your on-premises environment and on Google Cloud. Configure both as proxy servers using their public IP addresses. This option is also not the best approach because it involves using public IP addresses to communicate between the on-premises environment and Google Cloud, which can be less secure than using a private IP range. Additionally, this option requires additional overhead to configure and maintain the bastion hosts.
Option D: Set up Cloud VPN between the infrastructure on-premises and Google Cloud. This option is the best approach because it provides a secure, encrypted tunnel between the on-premises network and the Google Cloud VPC network, enabling direct communication between the two environments using private IP addresses. Cloud VPN is a managed service in Google Cloud that supports both IKEv1 and IKEv2 protocols, and it can be configured to connect to a variety of on-premises VPN gateways, including those from third-party vendors. By using Cloud VPN, you can extend your on-premises network to the Google Cloud VPC network, providing a secure and scalable solution for bursting to the cloud.